Issued:: 2019-06-26
Updated:: 2019-06-26

RHBA-2019:1590 - OpenShift Container Platform 4.1.3 bug fix update

Synopsis

OpenShift Container Platform 4.1.3 bug fix update

Type/Severity

Bug Fix Advisory None

Topic

Red Hat OpenShift Container Platform release 4.1.3 is now available with updates to packages and images that fix several bugs.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.1.3. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2019:1589

This update fixes the following bugs:

In OpenShift Docker builds, .dockerignore files were not processed before content was sent to the Docker daemon. As a result, images included content that should have been excluded. Now, the engine for building container images was switched to buildah and .dockerignore files in source repositories are respected during Docker strategy builds. (BZ#1487356)
A white screen with no error message would appear in the web console if trying to create an operator resource immediately after installing an operator through Operator Hub. Now, an error message is presented in the web console if trying to create a resource before it is available. (BZ#1709964)
Environment variables were not properly escaped in the source-to-image generated Dockerfile. As a result, source strategy builds, which included shell variables, would fail. Now, environment variables are properly escaped when the Dockerfile is consumed by buildah. Builds can now use shell variables as an environment variable value. (BZ#1713681)
Previously, the web console NetworkPolicy YAML template api-allow-http-and-https was incorrect and couldn't be created without modifications. This has been fixed, and the template now works as intended. (BZ#1717996)
The web console NetworkPolicy YAML template web-allow-production had incorrect indentation, preventing it from being created successfully. The indentation has been fixed, and the YAML template now works as intended. (BZ#1717997)
A race condition existed between the MCO and the growpart service. As a result, bootstrapping would fail. Now, the growpart service has been updated to start before kubelet.service and the race condition is averted. (BZ#1720872)

All OpenShift Container Platform 4.1 users are advised to upgrade to these updated packages and images.

Solution

Before applying this update, ensure all previously released errata relevant to your system have been applied.

For OpenShift Container Platform 4.1 see the following documentation, which will be updated shortly for release 4.1.3, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

https://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html

This update is available via Red Hat Subscription Management (RHSM) service. Details on how to access this content are available at This content is not included.https://access.redhat.com/articles/11258.

Affected Products

Product	Version	Arch
Red Hat OpenShift Container Platform	4.1	x86_64
Red Hat OpenShift Container Platform	4.1	x86_64

Updated Packages

open-vm-tools-10.3.10-2.el8.src.rpm
open-vm-tools-10.3.10-2.el8.x86_64.rpm
open-vm-tools-debuginfo-10.3.10-2.el8.x86_64.rpm
openshift-4.1.3-201906191252.git.0.9b19d73.el8.src.rpm
open-vm-tools-desktop-debuginfo-10.3.10-2.el8.x86_64.rpm
atomic-enterprise-service-catalog-svcat-4.1.3-201906191252.git.1.450cfb6.el7.x86_64.rpm
openshift-clients-4.1.3-201906191252.git.0.9b19d73.el7.x86_64.rpm
open-vm-tools-test-debuginfo-10.3.10-2.el8.x86_64.rpm
openshift-clients-4.1.3-201906191252.git.0.9b19d73.el8.x86_64.rpm
atomic-enterprise-service-catalog-4.1.3-201906191252.git.1.450cfb6.el7.x86_64.rpm
openshift-clients-redistributable-4.1.3-201906191252.git.0.9b19d73.el8.x86_64.rpm
openshift-4.1.3-201906191252.git.0.9b19d73.el7.src.rpm
openshift-hyperkube-4.1.3-201906191252.git.0.9b19d73.el7.x86_64.rpm
openshift-hyperkube-4.1.3-201906191252.git.0.9b19d73.el8.x86_64.rpm
atomic-enterprise-service-catalog-4.1.3-201906191252.git.1.450cfb6.el7.src.rpm
open-vm-tools-debugsource-10.3.10-2.el8.x86_64.rpm
openshift-clients-redistributable-4.1.3-201906191252.git.0.9b19d73.el7.x86_64.rpm

Fixes

This content is not included.BZ - 1722702

CVEs

(none)

References

(none)

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.